CyberArk Endpoint Privilege Manager

CyberArk Endpoint Privilege Manager (EPM) is an Endpoint Privilege Security solution that helps enforce role-specific least privilege for Windows, macOS and Linux workstations and servers. EPM reduces cyber risks through foundational endpoint security controls, defends against ransomware and credential compromise, and safeguards critical endpoint security agents like EDR. It streamlines operations by reducing IT Service Desk load, allowing for greater efficiency. EPM supports secure digital transformation by empowering end users with flexibility while aligning security with business goals. It also ensures audit and compliance by addressing specific regulations and creating an audit trail for endpoint identity and privilege events.

0 AWS reviews

1 external reviews

View purchase options

Try for free

Overview

Endpoint Privilege Security is an integral part of the CyberArk Identity Security Platform. Identity Security controls are dynamic and adaptive in nature and ensure the right level of access is given based on risk. CyberArk offers the most complete and extensible Identity Security Platform across workforce and customer access, endpoint privilege security, privileged access management, secrets management, cloud privilege security and identity management to enable Zero Trust and enforce least privilege. In CyberArk's portfolio, Endpoint Privilege Security is enabled by several tightly integrated solutions to ensure seamless operation and smooth user experience. CyberArk Endpoint Privilege Manager is the core CyberArk's offering in Endpoint Privilege Security category.

Endpoint Privilege Manager offers:

Maturity and relentless innovation.
Tried and proven mature technologies fused with cutting edge security layers based on own research and emerging threat landscape and industry trends.
Recognized Industry leader in Privileged Access Management and Identity security.
Unique protection against browser-targeting attacks for early detection and blocking of browser memory dumping, password and cookie stealing, session hijacking and other types of attack showing explosive growth in popularity.
Unique defense angles against whole classes of credential-based attacks, including Golden Ticket, Golden SAML, RedLine Stealer and more, provided by Credential Theft Protection and Credential Deception technology.
Robust multi-layered data-centric anti-ransomware technology with validated efficiency.
Most complete and extensible identity security platform.
CyberArk offers the most complete and extensible Identity Security Platform of which Endpoint Privilege Manager is a key component and a fundamental security layer.
Support for all major workstation and server operating systems: Windows, Windows Server, macOS and Linux.
Support for all types of workloads: physical, virtual, cloud instances.
CyberArk technologies are available as a pre-integrated unified endpoint authentication and privilege management solution - Secure Desktop - to help organizations strengthen access security, optimize user experiences, and eliminate the manually intensive, error-prone administrative processes that can lead to overprovisioning and privilege abuse.Architected for the modern enterprise.
Comprehensive and scalable SaaS architecture.
Leveraging experience - with CyberArk BluePrint, CyberArk JumpStart service and QuickStart we ensure that we recommend the optimal approach for each deployment and get each customer up and running in no time.
Impressive record of large truly enterprise deployments. Broadest Integration Support.
Out-of-the-box policies and integrations, including QuickStart and integrations with other endpoint and network security solutions, identity products, SIEMs and help desk platforms to solve identity security across the organization.
Threat Detection: these integrations allow leveraging third-party threat intelligence, reputation and analysis, including on-demand sandboxed detonation of potential threats.
Authentication integrations allow using third-party authentication platforms to ensure verified identity of users during initial and step-up authentications.
SIEM integrations allow making endpoint privilege events available to SIEMs for ingestion and processing for better context correlation and analysis.
ITSM platforms help streamline and automate elevation requests.

CyberArk Endpoint Privilege Manager helps you deliver measurable cyber-risk reduction, including protection from ransomware and credential compromise as well as defense of endpoint security agents (such as EDR), by implementing foundational endpoint security controls - removing local admin rights and enforcing role-specific least privilege based on policy. EPM enables operational efficiencies by reducing IT Service Desk load and secure digital transformation by encouraging users' independence and flexibility and aligning security to your business goals. It also satisfies audit and compliance by addressing specific regulation requirements and creating audit trail for identity and privilege use on endpoints.

For custom pricing, EULA, or a private contract, please contact AWS-Marketplace@cyberark.com , for a private offer.

Highlights

Remove Local Admin Rights. Endpoint Privilege Manager helps remove local admin rights while improving user experience and optimizing IT operations. Flexible policy-based management simplifies privilege orchestration and allows controlled Just-In-Time maintenance sessions. Dangerous software and actions are blocked while approved workflows require no user interaction as elevation is fully automated and transparent to the user.
Enforce Least Privilege. Comprehensive conditional policy-based application control can help you create safe working environments for every user group, from HR to DevOps. Endpoint Privilege Manager considers application context, parameters, and attributes to allow or block certain script, application or operation.
Defend against ransomware. EPM prevents deployment and execution of payload, system settings modification and tempering with security agents such as EDR and backup. Closely monitors software execution chain and blocks access to resources to defuse fileless and LOL-based TTPs. Severs CnC communication and network-born encryption by preventing greylisted applications from accessing network. Restricts data access for unknown applications thus preventing encryption and exfiltration of the data.

Details

Sold by

CyberArk

Features and programs

Financing for AWS Marketplace purchases

AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.

View financing details

Pricing

Free trial

Try for free

Try this product free according to the free trial terms set by the vendor.

CyberArk Endpoint Privilege Manager

Info

View purchase options

Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.

12-month contract (1)

Info

Dimension	Description	Cost/12 months
Privilege-Endpoint MNGR	Cyberark Privilege-Endpoint Privilege Manager - 100 Users	$11,520.00

Vendor refund policy

For refund policy, visit www.cyberark.com/terms-service-saas/

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery details

Software as a Service (SaaS)

SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

Resources

Vendor resources

Latest Release Notes

Support

Vendor support

Contact CyberArk for support related questions: www.cyberark.com/customer-support/

https://docs.cyberark.com/EPM/Latest/en/Content/LandingPages/LPGetStarted.htm

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

CyberArk Professional Services

By Accenture

Implement and configure CyberArk enterprise software to secure your business. Accenture is the global leader in CyberArk implementations having been named the CyberArk Global Partner of the Year. Accenture brings unparelleled value through every phase CyberArk of implementation including strategy, deployment, configuration, migration, and operations. With leading certified professionals, 20+ years of identity experience, and powerful assets, accelerators, and Gen AI delivery capabilities, Accenture will support your CyberArk journey to secure your identity future.

View product

Professional Services – Cyberark

By Agility BR TEC LLC

The Professional Service Product Implementation Service for Cyberark solutions is designed to meet a combination of Cyberark product deployment goals and objectives.

View product

CyberArk Workforce Identity

By CyberArk

With CyberArk Workforce & Customer Access solutions, organizations can ensure that the right users have secure access to the right resources at the right time.

View product

CyberArk DevSecOps

By CyberArk

CyberArk secrets management solutions enable applications and automation tools to securely access sensitive resources at scale - without burdening your developers.

View product

CyberArk Secure Cloud Access

By CyberArk

CyberArk Secure Cloud Access helps organizations meet the AWS Temporary Elevated Access Management (TEAM) principle, by elevating users just-in-time to roles scoped for least privilege access.

View product

Privileged Access Management

By CyberArk

CyberArk PAM solutions provide end-to-end security for internal IT admins & 3rd party vendors enabling secure high-risk access used to migrate, scale and operate applications on-premises or in the cloud. CyberArk allows IT teams to implement role-specific least privilege, and workflows for both secure standing access and Just-in-Time/Zero Standing Privileges workflows.

View product

Customer reviews

Write a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

1 external reviews

External reviews are sourced from G2 and are not included in the star rating for this product.

Nicholas B.

Cyberark EPM solid product

Reviewed on Aug 01, 2023

Review provided by G2

What do you like best about the product?

Easy to deploy and a great tool to give the limited access to admin privileges that users need sometimes. Keeps a company compliant with also keeping the business functioning. Reliable software that is easy to maintain as an admin.

What do you dislike about the product?

While the UI has been slightly updated over the past few years it still could be modernized. Also, the product has an ok learning curve and could use a better knowledge base when compared to other software.

What problems is the product solving and how is that benefiting you?

We have certain tasks and processes that require admin access to be done. We as IT can't spend every day giving admin access when people are just trying to do their job. The product lets us give users limited admin access to do what they need but keeps us as a company safe and compliant.